package com.ruoyi.common.security.utils;

import javax.servlet.http.HttpServletRequest;

import com.ruoyi.common.security.auth.AuthUtil;
import com.ruoyi.system.api.domain.SysRole;
import com.ruoyi.system.api.domain.SysUser;
import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
import com.ruoyi.common.core.constant.SecurityConstants;
import com.ruoyi.common.core.constant.TokenConstants;
import com.ruoyi.common.core.context.SecurityContextHolder;
import com.ruoyi.common.core.utils.ServletUtils;
import com.ruoyi.common.core.utils.StringUtils;
import com.ruoyi.system.api.model.LoginUser;

import java.util.HashSet;
import java.util.List;
import java.util.Set;

/**
 * 权限获取工具类
 * 
 * @author ruoyi
 */
public class SecurityUtils
{
//    private static final LoginUser loginUser=SecurityUtils.getLoginUser();

    /*
    * 获取用户的DataScope
    * */
    public static Set<String> getDataScope(){
        LoginUser loginUser = SecurityUtils.getLoginUser();
        SysUser sysUser = loginUser.getSysUser();
        List<SysRole> roles = sysUser.getRoles();
        Set<String> set=new HashSet<>();
        for (SysRole role : roles) {
            set.add(role.getDataScope());
        }
        return set;
     }

     /*
     * 获取用户部门id
     *
     * */

    public static Long getDeptId(){
        String token = SecurityUtils.getToken();
        return StringUtils.isEmpty(token)?null:AuthUtil.getLoginUser(token).getSysUser().getDeptId();
    }

    /**
     * 获取用户ID
     */
    public static Long getUserId()
    {
        String token = SecurityUtils.getToken();
        return StringUtils.isEmpty(token)?null:AuthUtil.getLoginUser(token).getUserid();
    }

//    public static Long getUserId()
//    {
//        return SecurityContextHolder.getUserId();
//    }

    /**
     * 获取用户名称
     */
    public static String getUsername()

    {
        String token = SecurityUtils.getToken();
        return StringUtils.isEmpty(token)?"":AuthUtil.getLoginUser(token).getUsername();

    }

//    public static String getUsername()
//    {
//        return SecurityContextHolder.getUserName();
//    }


    /**
     * 获取用户key
     */
    public static String getUserKey()
    {
        return SecurityContextHolder.getUserKey();
    }

    /**
     * 获取登录用户信息
     */
    public static LoginUser getLoginUser()
    {
        String token = SecurityUtils.getToken();
        return StringUtils.isEmpty(token)?null:AuthUtil.getLoginUser(token);
    }




    /**
     * 获取请求token
     */
    public static String getToken()
    {
        return getToken(ServletUtils.getRequest());
    }

    /**
     * 根据request获取请求token
     */
    public static String getToken(HttpServletRequest request)
    {
        if (request==null) return null;
        // 从header获取token标识
        String token = request.getHeader(TokenConstants.AUTHENTICATION);
        return replaceTokenPrefix(token);
    }

    /**
     * 裁剪token前缀
     */
    public static String replaceTokenPrefix(String token)
    {
        // 如果前端设置了令牌前缀，则裁剪掉前缀
        if (StringUtils.isNotEmpty(token) && token.startsWith(TokenConstants.PREFIX))
        {
            token = token.replaceFirst(TokenConstants.PREFIX, "");
        }
        return token;
    }

    /**
     * 是否为管理员
     * 
     * @param userId 用户ID
     * @return 结果
     */
    public static boolean isAdmin(Long userId)
    {
        return userId != null && 1L == userId;
    }

    /**
     * 生成BCryptPasswordEncoder密码
     *
     * @param password 密码
     * @return 加密字符串
     */
    public static String encryptPassword(String password)
    {
        BCryptPasswordEncoder passwordEncoder = new BCryptPasswordEncoder();
        return passwordEncoder.encode(password);
    }

    /**
     * 判断密码是否相同
     *
     * @param rawPassword 真实密码
     * @param encodedPassword 加密后字符
     * @return 结果
     */
    public static boolean matchesPassword(String rawPassword, String encodedPassword)
    {
        BCryptPasswordEncoder passwordEncoder = new BCryptPasswordEncoder();
        return passwordEncoder.matches(rawPassword, encodedPassword);
    }
}
